Harbor: Enterprise-grade container registry for modern private cloud
In the evolving landscape of application deployment, containerization with Kubernetes (K8s) has become the new standard. As organizations adopt Kubernetes at scale, public image registries often bring new challenges, from rate limits and escalating costs to…
Istio at KubeCon + CloudNativeCon North America 2025: Community highlights and project progress
KubeCon + CloudNativeCon North America 2025 lit up Atlanta from November 10–13, bringing together one of the largest gatherings of open-source practitioners, platform engineers, and maintainers across the cloud native ecosystem. For the Istio community, the…
CNCF On-Demand: Simplifying Cluster and Application Lifecycle (CAPI, CAREN and Gitops)
Managing the lifecycle of Kubernetes clusters and applications at scale often leads to operational complexity, fragmented tooling, and inconsistent environments. This session explores a unified, declarative approach to simplify and automate these processes using Cluster API…
Solution DaoCloud adopted HAMi, a CNCF Sandbox project, for heterogeneous AI computing virtualization, as the unified GPU layer across both D.run and DCE. HAMi provides device virtualization, vGPU partitioning, and scheduling for heterogeneous accelerators in Kubernetes…
runc container breakout vulnerabilities: A technical overview
A set of high-severity vulnerabilities in runc were publicly disclosed in November 2025, allowing for full container breakouts. Runc is the cornerstone of containerization on Linux, serving as the default low-level container runtime for industry-standard tools…
Announcing Kyverno release 1.16
Kyverno 1.16 delivers major advancements in policy as code for Kubernetes, centered on a new generation of CEL-based policies now available in beta with a clear path to GA. This release introduces partial support for namespaced…
CNCF On-Demand: From Chaos to Control in Enterprise AI/ML
Your container registry can do more than store Docker images – it can revolutionize how you ship ML models. Learn how the open CNCF KitOps project uses OCI Artifacts to package 100GB+ models, datasets, and code…
An architectural decision: Containers on bare metal or on virtual machines
Building and running modern applications begins with selecting Kubernetes distribution as a baseline. Once a platform team has selected its orchestration layer, one of the next architectural choices involves the deployment architecture where that cluster will…
History and evolution of platform engineering Platform engineering is a discipline focused on building and maintaining software development platforms that provide self-service for developer teams, offering the necessary infrastructure for provisioning an application, for example. The…
Kgateway is an open source implementation of the Kubernetes Gateway API that unifies ingress, API gateway, service mesh, and AI gateway capabilities in a singular modular control plane. Built for performance and flexibility, it secures and…